1
22
23 package com.liferay.portlet.shopping.service.permission;
24
25 import com.liferay.portal.PortalException;
26 import com.liferay.portal.SystemException;
27 import com.liferay.portal.security.auth.PrincipalException;
28 import com.liferay.portal.security.permission.ActionKeys;
29 import com.liferay.portal.security.permission.PermissionChecker;
30 import com.liferay.portal.util.PropsValues;
31 import com.liferay.portlet.shopping.model.ShoppingCategory;
32 import com.liferay.portlet.shopping.model.ShoppingItem;
33 import com.liferay.portlet.shopping.service.ShoppingItemLocalServiceUtil;
34
35
40 public class ShoppingItemPermission {
41
42 public static void check(
43 PermissionChecker permissionChecker, long itemId, String actionId)
44 throws PortalException, SystemException {
45
46 if (!contains(permissionChecker, itemId, actionId)) {
47 throw new PrincipalException();
48 }
49 }
50
51 public static void check(
52 PermissionChecker permissionChecker, ShoppingItem item,
53 String actionId)
54 throws PortalException, SystemException {
55
56 if (!contains(permissionChecker, item, actionId)) {
57 throw new PrincipalException();
58 }
59 }
60
61 public static boolean contains(
62 PermissionChecker permissionChecker, long itemId, String actionId)
63 throws PortalException, SystemException {
64
65 ShoppingItem item = ShoppingItemLocalServiceUtil.getItem(itemId);
66
67 return contains(permissionChecker, item, actionId);
68 }
69
70 public static boolean contains(
71 PermissionChecker permissionChecker, ShoppingItem item,
72 String actionId)
73 throws PortalException, SystemException {
74
75 ShoppingCategory category = item.getCategory();
76
77 if (PropsValues.PERMISSIONS_VIEW_DYNAMIC_INHERITANCE) {
78 if (!ShoppingCategoryPermission.contains(
79 permissionChecker, category, ActionKeys.VIEW)) {
80
81 return false;
82 }
83 }
84
85 if (permissionChecker.hasOwnerPermission(
86 item.getCompanyId(), ShoppingItem.class.getName(),
87 item.getItemId(), item.getUserId(), actionId)) {
88
89 return true;
90 }
91
92 return permissionChecker.hasPermission(
93 category.getGroupId(), ShoppingItem.class.getName(),
94 item.getItemId(), actionId);
95 }
96
97 }